Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/GBDleCGl4TRf0OEest41CFQmSxs.roa
File: GBDleCGl4TRf0OEest41CFQmSxs.roa (raw, json)
Hash identifier: QrPbzk+yKmLRhL4sxLQ8AMz9GhNyCSWMuZqWnythmhM=
Subject key identifier: 18:10:E5:78:21:A5:E1:34:5F:D0:E1:1E:B2:DE:35:08:54:26:4B:1B
Certificate issuer: /CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Certificate serial: 01856ED49E38C8CE1369D552A6286AFC878F
Authority key identifier: 5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/GBDleCGl4TRf0OEest41CFQmSxs.roa
Signing time: Sun 01 Jan 2023 19:35:05 +0000
ROA not before: Sun 01 Jan 2023 19:35:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199938
IP address blocks: 194.76.122.0/23 maxlen: 24
2001:678:e28::/48 maxlen: 56
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:9e:38:c8:ce:13:69:d5:52:a6:28:6a:fc:87:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf56321eb7ea3ee45cded028668420e37fa2fac
Validity
Not Before: Jan 1 19:35:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1810e57821a5e1345fd0e11eb2de350854264b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:06:05:16:ba:3e:64:7c:f5:31:ca:3e:b6:fa:
2b:ee:ef:a9:3c:25:5c:86:4c:be:70:8b:c0:3a:ba:
e3:5c:fe:31:48:3b:db:d2:76:e7:b1:9b:08:25:ca:
fb:a2:05:40:93:6b:b3:cb:46:b1:b9:02:76:87:ac:
27:8a:d4:74:64:a2:53:df:92:4d:43:82:bb:51:aa:
a9:e1:e8:25:97:c4:b9:d2:09:e0:17:68:69:b7:96:
3c:05:93:77:94:6a:a6:3f:11:72:d3:f1:67:6a:ea:
42:d9:d1:3a:93:4d:bc:ed:3e:b9:45:6a:67:65:66:
78:b7:b7:2d:ac:92:b2:7e:17:9d:be:01:56:e3:0a:
27:eb:d3:af:a7:c5:15:d7:d4:8f:c4:fc:11:8f:cc:
ec:47:a3:44:c5:81:2f:de:05:b8:e8:4a:37:98:85:
e5:e4:95:6f:a0:d3:5b:7e:69:79:09:4b:78:a2:26:
df:61:a6:03:1b:21:36:13:db:18:00:1e:72:93:30:
46:26:00:b1:8d:51:8f:e3:48:6e:9a:dc:11:93:01:
98:20:f1:46:f5:e8:4a:f4:0b:17:36:a8:56:99:59:
98:91:d7:3b:40:3e:b3:4e:7f:ac:2e:a7:40:a5:35:
ea:5d:b1:a3:8a:d0:45:bd:e2:32:3d:66:8e:70:6b:
77:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:10:E5:78:21:A5:E1:34:5F:D0:E1:1E:B2:DE:35:08:54:26:4B:1B
X509v3 Authority Key Identifier:
keyid:5C:F5:63:21:EB:7E:A3:EE:45:CD:ED:02:86:68:42:0E:37:FA:2F:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPVjIet-o-5Fze0ChmhCDjf6L6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/GBDleCGl4TRf0OEest41CFQmSxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/dfa4a8-38b0-461b-a082-843e262dd8dc/1/XPVjIet-o-5Fze0ChmhCDjf6L6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.122.0/23
IPv6:
2001:678:e28::/48
Signature Algorithm: sha256WithRSAEncryption
5f:3c:77:3e:cc:3e:c8:20:ff:87:e5:20:55:3e:8e:a9:54:90:
a7:9d:9f:15:8a:a0:c9:57:ab:ce:58:05:d8:1f:a1:c5:bf:5a:
31:d2:b3:6d:5b:24:00:85:a0:bd:15:a6:bb:19:4a:03:40:8f:
da:76:87:f8:5a:b9:94:ca:94:ed:5d:8f:37:e4:3e:fd:09:a6:
03:97:5c:b1:6a:38:25:de:5d:b8:d8:99:d8:27:2b:d9:a6:9b:
95:2e:1d:99:6c:9c:fd:b9:e8:46:bf:a8:31:b2:4b:78:9b:9b:
e4:d3:a7:22:47:3b:b5:63:1d:9d:de:59:3c:da:e1:14:d3:c3:
85:b2:e6:88:08:61:c6:5a:ff:fc:9d:c3:2c:eb:75:3d:af:21:
92:33:8d:0f:6f:13:47:85:f2:ff:b6:24:55:12:c3:fd:4f:43:
bb:f8:cb:61:92:a8:2c:12:83:97:37:a7:5c:71:28:3f:e5:5c:
17:7a:3b:07:b7:42:e0:dd:6b:89:1d:59:bb:a9:94:d7:95:95:
71:7b:09:2f:82:49:40:f0:87:b0:20:50:eb:ab:03:9d:f0:9d:
8d:b7:21:e2:35:15:4d:f5:db:22:c2:85:6a:36:de:10:95:d8:
f2:26:63:d5:7f:04:1c:0e:4a:88:1e:0b:6e:23:76:42:1f:e6:
68:e5:34:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:19 2024 by rpki-client on console-fra.rpki-client.org